Next | Query returned 95 messages, browsing 21 to 30 | Previous

History of commit frequency

CVS Commit History:


   2012-08-14 20:41:19 by Matthias Drochner | Files touched by this commit (3)
Log message:
as with python27: avoid POSIX semaphores on NetBSD, this is broken
at least on -current
   2012-05-13 11:00:43 by OBATA Akio | Files touched by this commit (4)
Log message:
fixes reverse condition usage of CHECK_BUILTIN.openssl.
   2012-05-07 03:54:16 by David A. Holland | Files touched by this commit (473)
Log message:
Set BUILDLINK_ABI_DEPENDS correctly (with +=, not ?=)
It turns out there were a lot of these.
   2012-05-06 00:16:15 by Joerg Sonnenberger | Files touched by this commit (3)
Log message:
Fix build of py26-expat against expat-2.0. Bump revision.
   2012-04-14 12:47:19 by OBATA Akio | Files touched by this commit (31) | Package removed
Log message:
Update python26 to 2.6.8.
(CVE-2012-0845, CVE-2012-1150 are alredy fixed in pkgsrc,
 CVE-2012-0876 is not affect to pkgsrc, using external expat)

What's New in Python 2.6.8?
===========================

*Release date: 2012-04-10*

No changes since 2.6.8rc2.

What's New in Python 2.6.8 rc 2?
================================

*Release date: 2012-03-17*

Library
-------

- Issue #14234: CVE-2012-0876: Randomize hashes of xml attributes in the hash
  table internal to the pyexpat module's copy of the expat library to avoid a
  denial of service due to hash collisions.  Patch by David Malcolm with some
  modifications by the expat project.

What's New in Python 2.6.8 rc 1?
================================

*Release date: 2012-02-23*

Core and Builtins
-----------------

- Issue #13703: oCERT-2011-003 CVE-2012-1150: add -R command-line
  option and PYTHONHASHSEED environment variable, to provide an opt-in
  way to protect against denial of service attacks due to hash
  collisions within the dict and set types.  Patch by David Malcolm,
  based on work by Victor Stinner.

Library
-------

- Issue #14001: CVE-2012-0845: xmlrpc: Fix an endless loop in
  SimpleXMLRPCServer upon malformed POST request.

- Issue #13885: CVE-2011-3389: the _ssl module would always disable the CBC
  IV attack countermeasure.
   2012-03-25 11:09:05 by Matthias Scheler | Files touched by this commit (29)
Log message:
Add a fix for the DoS vulnerability reported in CVE-2012-1150 taken
from the Python Mercurial repository.
   2012-02-15 13:21:41 by Matthias Drochner | Files touched by this commit (3)
Log message:
add patch from Python issue#14001 to fix xmlrpc server endless loop
by malformed request
bump PKGREV
   2012-01-18 15:00:11 by Adam Ciarcinski | Files touched by this commit (1)
Log message:
Revbump after updating db5
   2011-12-16 18:04:18 by Hans Rosenfeld | Files touched by this commit (10)
Log message:
On SunOS, don't ever override _XOPEN_SOURCE if it is already set.
Fixes build on SunOS with gcc>=4.6.
   2011-11-08 08:30:09 by Steven Drake | Files touched by this commit (10)
Log message:
Change a unused variable referacne to a fixed string that I missed when
coping the Mac OS X sdk filename handling.

Thank to Matthias Rampke in PR#45581 for catching this.

Next | Query returned 95 messages, browsing 21 to 30 | Previous